Hacker attack Lazio Region, FBI and Europol collaborate in the investigation
Hacker attack on the Lazio Region, Lamorgese from Copasir: "Raising the level of security"
Hacker attack Lazio Region, D'Amato: total functionality restored within 72 hours
Share
05 August 2021 “After the work of these days, we are now able to present a first time
schedule
of the services we are reactivating: the
vaccination booking system
is operational this afternoon
and can be reached from the website
www.prenotavaccino-covid.regione. lazio.it.
The vaccination registry will start again during the day ". This was announced in a note by the President of the Lazio Region, Nicola Zingaretti.
"On Monday, however - continues the note - a
temporary regional site
will be activated
which will contain information for citizens and administrative services, such as the Burl. By next Friday the e-mail of the Lazio Region will be active again and by the end of August the balance sheet activity, whose data are intact.
The
regional tenders
have already restarted thanks to the collaboration with the Emilia Romagna Region, waiting for our platform to restart by early September. We confirm that the
services
118, 112,
Civil Protection, Transfusion Center, First Aid and Car tax payment
have never been interrupted
".
Zingaretti stresses that" the Lazio Region confirms that
payments
will be
respected
health care providers and salaries and, if necessary, extraordinary payments are already guaranteed. In addition to health data, those related to the regional budget, civil engineering and European ERDF funds are also safe.
No data is currently destroyed
. Unlike what is claimed by press rumors, the regional IT security system is constantly updated and is constantly certified by the competent bodies in compliance with the most recent security measures.
In 2019 the structure of the regional Ced was completely restructured both from the point of view of architecture and information security. As for the dynamics of the attacks and the effects they have produced are currently being considered and under the monitoring of the investigators and the competent authorities. "
The IP Hunt
is seeking at this time to trace the IP addresses from which the party 's
attack hacker who hit the Lazio regional computer system
. The investigators - after the hacker attack on Sunday 1 August which made it necessary to take the platform offline - are hunting for the
Internet Protocol addresses
from where the malware that hit started the Data Processing Center.
The Internet Protocol Address or IP address is a numerical code used by all devices connected to the Internet, whether computers, servers, printers, modems, in order to communicate on a network. It looks like a
sequence of numbers
separated by dots, for example 198.128.1.33.
The support provided by the FBI and Europol could be decisive to trace the IPs. The Postal Police, which works under delegation from the Rome Public Prosecutor's Office, is analyzing the data, on the log files, acquired in recent days, with the aim of understanding where - or from which country - the intrusion started.
The investigations that the Postal Police are carrying out, in collaboration with Europol and the US FBI, also aim to verify any similarities with attacks in Italy and abroad. The prosecutors of the cybercrime and counter-terrorism pool investigate cybercrime, coordinated by the chief prosecutor Michele Prestipino and the deputy prosecutor Angelantonio Racanelli. In the file, the crimes hypothesized are unauthorized access to the computer system, attempted extortion and damage to the computer system, with the aggravating circumstance of the purposes of terrorism
Computer companies deny involvement
Regarding journalistic reconstructions relating to the hacker attacks, according to which the company Engineering. - through his company Atos - allegedly suffered an illicit attack on its services, Atos in a note "clarifies that it is not a subsidiary of Engineering, that it is an independent company with a European company name and denies any involvement in the affair and any connection with the issue in question".
Still on the subject of third-party companies, the regional councilor for health Andrea D'Amato had mentioned Leonardo's agreement with the Lazio Region and the company, with a note, specified that "it has never had the operational management of monitoring and cyber protection of Laziocrea "and to have provided" exclusively governance services for the design of a Security operation ventre (Soc). Councilor D'Amato returns to the issue to reiterate that "The contract between LazioCrea and Leonardo is clear and needs no comments, I simply reported the subject of the agreement that has existed for over two years for three project phases, including vulnerability assessment and IT security procedures. Transparency in these cases is a must ".